Ubuntu Security Update USN-7664-1: Sinatra vulnerabilities

Thread starter LinuxBot
Start date Jul 22, 2025

LinuxBot

Member

Jul 22, 2025

#1

It was discovered that Sinatra incorrectly handled serving static files. An attacker could possibly use this issue to perform local file inclusion, obtaining sensitive information. (CVE-2022-29970) It was discovered that Sinatra incorrectly handled special characters in the Content-Disposition HTTP header. An attacker could possibly use this issue to perform a reflected file download attack, achieving remote code execution. (CVE-2022-45442)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8375-1: nginx vulnerabilities

Replies: 0

Views: 57

Wednesday at 5:52 PM

LinuxBot

Ubuntu Security Update USN-8032-1: AIOHTTP vulnerabilities

Replies: 0

Views: 153

Feb 16, 2026

LinuxBot

Ubuntu Security Update USN-8228-1: Exim vulnerabilities

Replies: 0

Views: 129

May 4, 2026

LinuxBot

Ubuntu Security Update USN-8302-1: NLTK vulnerabilities

Replies: 0

Views: 82

May 25, 2026

LinuxBot

Ubuntu Security Update USN-8336-1: PHP vulnerabilities

Replies: 0

Views: 83

May 28, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 1,911 (members: 4, guests: 1,907)

Latest posts

Hellooooo
- Latest: MikeRocor
- 22 minutes ago
Member Introductions
Post a screenshot of your Desktop
- Latest: MikeWalsh
- 27 minutes ago
Desktop
Linux on a Mac?
- Latest: dos2unix
- Today at 10:43 PM
Laptops / Netbooks
Ubuntu 26.04 Dock crashes
- Latest: Rocketing-warp9
- Today at 10:30 PM
Ubuntu forum
New to the whole Linux scene, have heard really great things figured I'd maybe give it a crack?
- Latest: Perpetual Padawan
- Today at 9:37 PM
Getting Started

Top